Version 8.2.0

  • Added px_token_version configuration to support both v2 and v3 (default is v3)
  • GraphQL query keyword extraction via string/regex (px_graphql_keywords) and custom function (px_extract_graphql_keywords)
  • Support for cookie secret rotation
  • Configuration px_sensitive_graphql_operation_names expanded to include regular expressions and applies to extracted GraphQL keywords as well
  • Telemetry activity includes redacted sensitive configuration fields
  • Default value for px_bypass_monitor_header changed from an empty string to “x-px-block”
  • Modify telemetry activity to include all types of config
  • Updated the captcha template
  • Using raw URL instead of parsed URL in block page captcha script query parameter
  • Converted fields login_successful_reporting_method, sent_through of CredentialEndpointConfiguration to optional
  • Fixed issue where unvalidated _pxvid value was added to the captcha page
  • Fixed issue where regular expressions occasionally failed on calls to test() due to global flag